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1.Which two statements about running a vulnerability scan are true? 
(Choose two.) 

A. You should run the vulnerability scan during a maintenance 
window. 

B. You should run the vulnerability scan in a test environment. 

C. Vulnerability scanning increases the load on FortiWeb, so it should 
be avoided. 

D. You should run the vulnerability scan on a live website to get 
accurate results. 

Answer: A, B 
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2.FortiWeb offers the same load balancing algorithms as FortiGate. 

Which two Layer 7 switch methods does FortiWeb also offer? (Choose two.) 
A. Round robin 

B. HTTP session-based round robin 

C. HTTP user-based round robin 

D. HTTP content routes 

Answer: A, D 
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3.Which would be a reason to implement HTTP rewriting? 
A. The original page has moved to a new URL 

B. To replace a vulnerable function in the requested URL 
C. To send the request to secure channel 

D. The original page has moved to a new IP address 
Answer: B 
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4. Which statement about local user accounts is true? 

A. They are best suited for large environments with many users. 
B. They cannot be used for site publishing. 

C. They must be assigned, regardless of any other authentication. 
D. They can be used for SSO. 

Answer: B 
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5. Which algorithm is used to build mathematical models for bot 
detection? 

A. HCM 

B. SVN 

C. SVM 

D. HMM 

Answer: C 
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6.A client is trying to start a session from a page that would normally 
be accessible only after the client has logged in. 

When a start page rule detects the invalid session access, what can 
FortiWeb do? (Choose three.) 

A. Display an access policy message, then allow the client to 
continue 

B. Redirect the client to the login page 

C. Allow the page access, but log the violation 

D. Prompt the client to authenticate 

E. Reply with a 403 Forbidden HTTP error 

Answer: B, C, E 
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7.What can an administrator do if a client has been incorrectly period 
blocked? 

A. Nothing, it is not possible to override a period block. 

B. Manually release the ID address from the temporary blacklist. 

C. Force a new IP address to the client. 

D. Disconnect the client from the network. 

Answer: B 
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8.When FortiWeb triggers a redirect action, which two HTTP codes 
does it send to the client to inform the browser of the new URL? 
(Choose two.) 

A. 403 

B. 302 

C. 301 

D. 404 

Answer: B, C 
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9.True transparent proxy mode is best suited for use in 
which type of environment? 

A. New networks where infrastructure is not yet defined 
B. Flexible environments where you can easily change 
the IP addressing scheme 

C. Small office to home office environments 

D. Environments where you cannot change the IP 
addressing scheme 

Answer: B 
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10.Which two statements about the anti-defacement feature on 
FortiWeb are true? (Choose two.) 

A. Anti-defacement can redirect users to a backup web server, if it 
detects a change. 

B. Anti-defacement downloads a copy of your website to RAM, in 
order to restore a clean image, if it detects defacement. 

C. FortiWeb will only check to see if there are changes on the web 
server; it will not download the whole file each time. 

D. Anti-defacement does not make a backup copy of your databases. 
Answer: C, D 


